{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,28]],"date-time":"2025-10-28T03:10:50Z","timestamp":1761621050346},"reference-count":27,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2010,11,9]],"date-time":"2010-11-09T00:00:00Z","timestamp":1289260800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Requirements Eng"],"published-print":{"date-parts":[[2011,3]]},"DOI":"10.1007\/s00766-010-0114-8","type":"journal-article","created":{"date-parts":[[2010,11,8]],"date-time":"2010-11-08T08:06:30Z","timestamp":1289203590000},"page":"55-73","source":"Crossref","is-referenced-by-count":15,"title":["A methodology for security assurance-driven system development"],"prefix":"10.1007","volume":"16","author":[{"given":"Jos\u00e9 Luis","family":"Vivas","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Isaac","family":"Agudo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Javier","family":"L\u00f3pez","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2010,11,9]]},"reference":[{"key":"114_CR1","unstructured":"Privacy and Identity Management for Community Services (PICOS). http:\/\/www.picos-project.eu"},{"key":"114_CR2","doi-asserted-by":"crossref","unstructured":"Graydon PJ, Knight JC, Strunk EA (2007) Assurance based development of critical systems. In: 37th annual IEEE\/IFIP international conference on Dependable Systems and Networks (DSN\u201907). pp 347\u2013357","DOI":"10.1109\/DSN.2007.17"},{"key":"114_CR3","unstructured":"Goodenough J, Lipson H, Weinstock C (2007) Arguing security\u2014creating security assurance cases. Carnegie Mellon University. Available at https:\/\/buildsecurityin.us-cert.gov\/daisy\/bsi\/articles\/knowledge\/assurance\/643-BSI.html . Last Accessed 19 Sep 2008"},{"key":"114_CR4","volume-title":"Object-oriented software engineering\u2014a use case driven approach","author":"Y Jacobson","year":"1992","unstructured":"Jacobson Y, Christerson M, Jonsson P, Overgaard G (1992) Object-oriented software engineering\u2014a use case driven approach. Addison Wesley\/ACM Press, Massachusetts\/New York"},{"key":"114_CR5","unstructured":"Dawson S (2005) The genesys of cyberscience and its mathematical models. SRI International, System Design Laboratory. Technical report, number AFRL-IF-RS-TR-2005-49"},{"issue":"3","key":"114_CR6","doi-asserted-by":"crossref","first-page":"241","DOI":"10.1007\/s00766-008-0067-3","volume":"13","author":"C Kalloniatis","year":"2008","unstructured":"Kalloniatis C, Kavakli E, Gritzalis S (2008) Addressing privacy requirements in system design: the PriS method. Requir Eng 13(3):241\u2013255","journal-title":"Requir Eng"},{"key":"114_CR7","doi-asserted-by":"crossref","unstructured":"Liu L, Yu E, Mylopoulos J (2003) Security and privacy requirements analysis within a social setting. In: 11th IEEE international requirements engineering conference (RE\u201903), Monterey Bay, CA, pp 151\u2013161","DOI":"10.1109\/ICRE.2003.1232746"},{"key":"114_CR8","unstructured":"Liu L, Yu E, Mylopoulos J (2002) Analyzing security requirements as relationships among strategic actors, SREIS\u201902, e-proceedings, Raleigh, NC"},{"key":"114_CR9","doi-asserted-by":"crossref","unstructured":"Chung L (1993) Dealing with security requirements during the development of information systems. In: Proceedings of advanced information systems engineering, LNCS 685, pp 234\u2013251","DOI":"10.1007\/3-540-56777-1_13"},{"key":"114_CR10","doi-asserted-by":"crossref","unstructured":"van Lamsweerde A, Letier E (2000) Handling obstacles in goal-oriented requirements engineering. IEEE Trans Softw Eng, special issue on exception handling 26(10):978\u20131005","DOI":"10.1109\/32.879820"},{"issue":"6","key":"114_CR11","doi-asserted-by":"crossref","first-page":"483","DOI":"10.1109\/32.142871","volume":"18","author":"J Mylopoulos","year":"1992","unstructured":"Mylopoulos J, Chung L, Nixon B (1992) Representing and using non-functional requirements: a process-oriented approach. IEEE Trans Softw Eng 18(6):483\u2013497","journal-title":"IEEE Trans Softw Eng"},{"key":"114_CR12","unstructured":"Kalloniatis C, Kavakli E, Gritzalis S (2004) Security requirements engineering for eGovernment applications: analysis of current frameworks. In: Proceedings of the DEXA\u201904 EGOV\u201904 3rd international conference on electronic government, LNCS 3183, Zaragoza, Spain, Sep 2004, pp 66\u201371"},{"issue":"3","key":"114_CR13","doi-asserted-by":"crossref","first-page":"90","DOI":"10.1109\/MSP.2004.17","volume":"2","author":"P Hope","year":"2004","unstructured":"Hope P, McGraw G, Ant\u00f3n AI (2004) Misuse and abuse cases: getting past the positive. IEEE Secur Priv 2(3):90\u201392","journal-title":"IEEE Secur Priv"},{"key":"114_CR14","unstructured":"Software security assurance: A State-of-the-Art Report (SOAR), 31 July 2007"},{"key":"114_CR15","unstructured":"Wilander J, Gustavsson J (2005) Security requirements\u2014a field study of current practice. In: E-proceedings of the symposium on requirements engineering for information security, 2005"},{"key":"114_CR16","unstructured":"Strunk EA, Knight JC (2006) The essential synthesis of problem frames and assurance cases. In: Proceedings of 2nd international workshop on applications and advances in problem frames, co-located with 29th international conference on software engineering, Shanghai, May 2006"},{"key":"114_CR17","doi-asserted-by":"crossref","unstructured":"Kelly T (2004) A systematic approach to safety case management. In: Proceedings SAE 2004 World Congress, Detroit, USA, 2004","DOI":"10.4271\/2004-01-1779"},{"key":"114_CR18","volume-title":"Problem frames: analysing and structuring software development problem","author":"MA Jackson","year":"2001","unstructured":"Jackson MA (2001) Problem frames: analysing and structuring software development problem. Addison Wesley Publishing Company, Massachusetts"},{"key":"114_CR19","unstructured":"Hall JG, Rapanotti L (2008) Assurance-driven design. In: The third international conference on software engineering advances, 2008 (ICSEA, 2008), Oct 2008, pp 379\u2013388"},{"key":"114_CR20","doi-asserted-by":"crossref","unstructured":"Hall JG, Rapanotti L, Jackson M (2007) Problem oriented software engineering: a design-theoretic framework for software engineering. In: Proceedings of the fifth IEEE international conference on software engineering and formal methods, pp 15\u201324","DOI":"10.1109\/SEFM.2007.29"},{"key":"114_CR21","unstructured":"Bloomfield RE, Bishop PG, Jones CCM, Froome PKD (1998) ASCAD\u2014Adelard Safety Case Development Manual, Adelard 1998, ISBN 0 953377105"},{"key":"114_CR22","unstructured":"Scott Ankrum AT, Kromholz AH (2006) Structured assurance cases: three common standards\u2019 (slides presented at the Association for Software Quality [ASQ] Section\u00a0509 Software Special Interest Group meeting, McLean, VA, 23 Jan 2006"},{"issue":"6","key":"114_CR23","doi-asserted-by":"crossref","first-page":"761","DOI":"10.1093\/logcom\/1.6.761","volume":"1","author":"KG Larsen","year":"1991","unstructured":"Larsen KG, Xinxin L (1991) Compositionality through an operational semantics of contexts. J Log Comput 1(6):761\u2013795","journal-title":"J Log Comput"},{"key":"114_CR24","doi-asserted-by":"crossref","unstructured":"Milner R (1980) A calculus of communicating systems. Springer, ISBN 0-387-10235-3","DOI":"10.1007\/3-540-10235-3"},{"key":"114_CR25","doi-asserted-by":"crossref","unstructured":"Hennessy M, Milner R (1980) On observing nondeterminism and concurrency. In: de Bakker JW, van Leeuwen J (eds) Automata, languages and programming, 7th colloquium, vol 85 of Lecture Notes in Computer Science, Noordweijkerhout, Springer, The Netherlands, 14\u201318 July 1980, pp 299\u2013309","DOI":"10.1007\/3-540-10003-2_79"},{"key":"114_CR26","unstructured":"ISTPA International Security Trust and Privacy Association (2007) Analysis of privacy principles: making privacy operational, Version 2.0"},{"key":"114_CR27","doi-asserted-by":"crossref","unstructured":"Potts C (1995) Using schematic scenarios to understand user needs. In: Proceedings of DIS\u201995\u2014ACM symposium on designing interactive systems: processes, practices and techniques. University of Michigan","DOI":"10.1145\/225434.225462"}],"container-title":["Requirements Engineering"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s00766-010-0114-8.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s00766-010-0114-8\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s00766-010-0114-8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,6]],"date-time":"2019-06-06T03:50:51Z","timestamp":1559793051000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s00766-010-0114-8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2010,11,9]]},"references-count":27,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2011,3]]}},"alternative-id":["114"],"URL":"https:\/\/doi.org\/10.1007\/s00766-010-0114-8","relation":{},"ISSN":["0947-3602","1432-010X"],"issn-type":[{"value":"0947-3602","type":"print"},{"value":"1432-010X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2010,11,9]]}}}